Improper Privilege Management in ND Booking - #VU19936
Published: August 6, 2019
Vulnerability identifier: #VU19936
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber
CVE-ID: N/A
CWE-ID: CWE-269
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Endreww
Affected software:
ND Booking
ND Booking
Detailed vulnerability description
The vulnerability allows a remote attacker to escalate privilege on the target system.
The vulnerability exists due to the missing capability check in the ‘update_option’ function. A remote attacker can send a specially crafted AJAX request to the "nd_options_import_settings_php_function", modify the settings of WordPress and take over the blog and its database.
The vulnerability exists due to the missing capability check in the ‘update_option’ function. A remote attacker can send a specially crafted AJAX request to the "nd_options_import_settings_php_function", modify the settings of WordPress and take over the blog and its database.
Remediation
Install updates from vendor's website.